[maemo-developers] iptables nat and MASQUERADE on N810

From: Tommi Kyntola tommi.kyntola at ray.fi
Date: Wed Sep 30 15:46:09 EEST 2009
Has someone gotten MASQUERADE to work on an n810?

My problem is two-fold. First, the kernel compiled in scratchbox
doesn't work in n810 if I enable CONFIG_NF_CONNTRACK_ENABLED=m
(or =y for that matters). Has someone gotten this to work?
Identical .config with =n works fine. I got the modules
insmodded and iptables -t nat to work once I compiled
them afterwards. I.e. compiled the zImage with said option
set to n and then rebuild modules with said option set to m
(along with few others necessary for full nat).

My set up is an usb ethernet nic set up as eth0, which works
just fine on the n810. The n810 is to function as a pxe boot
server. I installed the udhcpd and tftpd and a system
behind the n810 (eth0) netboots just fine. And it can
ping the n810, but packets that are forwarded
out through the n810 wlan0 don't get masqueraded.
And that's the second and my main problem.

I have the routes and the iptables rules in place and
also the ip_forward is allowed. The pings for example
do indeed passthrough and even increase the packet
cound in matching postrouting -j MASQUERADE rule,
but mysteriously they are not source-ip-translated.
I.e. they appear on the wlan0 side unaltered with their
original source ip (i.e. the ip of the host computer),
just as-if they would without the masquerade rule.

I was unable to google any reference to someone actually
getting the MASQUERADE working on an n810.

Any pointers/help appreciated...

cheers,
Tommi Kyntola
More information about the maemo-developers mailing list